libervia-templates: sat_templates/templates/default/base/base.html comparison

base/base.html: expose CSRF token to script + fixed script content

comparison

equal deleted inserted replaced

-:7345ccb7f9df
+:caa3767707fb
 {{dynamic_style}}
 </style>
 {% endif %}
 {# JS handling #}
+{% if csrf_token is defined %}
+<script>var csrf_token = "{{csrf_token}}";</script>
+{% endif %}
 {% if websocket is defined %}
 {{ script.include('websocket', '') }}
 {% endif %}
 {# FIXME: following ugly hack is temporarily needed for dom_update, until a proper way to handle gettext dynamicly is implemented #}
 <script>expand_txt="{% trans %}Click to expand…{% endtrans %}"; reduce_txt="{% trans %}Click to reduce…{% endtrans %}";</script>
 {{ script.generate_scripts() }}
 {% for script in scripts %}
-<script{{ {'src': script.src, 'type': script.type} | xmlattr }}>{{script.content}}</script>
+<script{{ {'src': script.src, 'type': script.type} | xmlattr }}>{{script.content|safe}}</script>
 {% endfor %}
 {% if websocket is defined %}
 <script>var socket=new WSHandler("{{websocket.url}}", "{{websocket.token}}", {{websocket.debug}});</script>
 {% endif %}

Mercurial > libervia-templates